$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/3F3EDA068CAB11EF8A61C244C4F9AE02.roa File: 3F3EDA068CAB11EF8A61C244C4F9AE02.roa (raw, json) Hash identifier: fPlpl+6wej6T+qlffCRN8i/34qmKi/y8g+MxfRnVAjI= Subject key identifier: 28:41:50:2A:C7:18:F4:36:A3:BA:20:1A:E3:EF:38:1B:62:89:22:61 Certificate issuer: /CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Certificate serial: 0144 Authority key identifier: B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/3F3EDA068CAB11EF8A61C244C4F9AE02.roa Signing time: Thu 17 Oct 2024 17:15:57 +0000 ROA not before: Thu 17 Oct 2024 17:15:57 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 153371 IP address blocks: 2401:b60:37::/48 maxlen: 48 2401:b60:38::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 03:49:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Validity Not Before: Oct 17 17:15:57 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6711464d-2341 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:31:55:82:91:78:85:09:43:8c:e5:32:cd:e2: b8:ce:92:01:9c:dc:d0:6f:d9:fb:8d:8b:25:d2:ef: 50:70:f9:e7:dd:05:7e:1a:ae:6b:e1:df:2b:9c:b2: 3d:57:0e:a5:7b:6e:77:fb:a7:e5:f6:43:eb:20:c8: 1e:32:3e:bb:56:ca:92:2e:83:2b:2f:50:9b:2d:c9: cc:4c:ea:12:c9:a5:26:43:31:09:2d:27:55:e1:d4: ed:ca:9b:09:03:47:f7:1a:9b:e7:35:6e:5d:e8:36: 12:ea:bf:cb:ef:05:9a:f5:e9:af:77:da:b6:1f:ce: 9a:1f:59:6d:8f:41:2a:10:72:df:16:68:b5:3f:78: 5b:03:67:b8:32:85:9c:bc:e3:aa:55:77:5e:47:ef: fb:62:60:00:38:b8:42:35:c4:eb:5a:8a:7e:92:74: d9:ff:c3:8f:44:00:07:01:b3:96:ea:b0:08:35:51: 1a:67:c3:d9:72:0d:c4:d3:d7:aa:5d:74:92:33:35: 1d:23:a3:9f:79:b1:34:a2:4c:72:4d:4d:d8:1e:57: 10:7c:8a:da:cf:ba:55:22:07:39:e2:66:75:c5:37: 7a:01:67:1d:2a:37:27:af:1f:86:cf:86:ef:e9:32: 91:c3:8d:f9:89:0d:67:c8:b7:eb:82:97:38:31:b0: 7f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:41:50:2A:C7:18:F4:36:A3:BA:20:1A:E3:EF:38:1B:62:89:22:61 X509v3 Authority Key Identifier: keyid:B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/3F3EDA068CAB11EF8A61C244C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b60:37::-2401:b60:38:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 31:3c:1d:b3:60:80:e7:74:e3:7d:54:68:b7:df:c8:76:25:a8: fa:80:37:a6:57:d7:51:84:6d:a5:78:64:4b:d7:e8:48:f6:de: ac:35:b7:1c:e2:81:3c:6e:e2:b4:7f:db:1f:3e:8c:ad:b7:13: 26:a0:f7:08:88:71:d0:92:ab:e2:8d:8c:b5:f8:33:96:3f:b1: 90:b1:08:34:40:90:ea:6c:08:0f:a0:e4:00:d5:9e:a1:15:27: fd:f0:a4:54:23:09:23:f3:35:45:d8:bc:b9:20:64:a6:ae:59: 04:a0:91:9d:ed:f9:be:a6:f1:f5:a7:dd:fd:c1:3b:74:df:bc: ec:67:d5:0c:27:74:e1:df:30:54:30:a1:61:58:9e:f0:76:dd: e9:d3:04:1a:e7:02:b0:a0:1a:7e:22:67:62:cc:72:b2:2e:09: fa:8e:b4:30:5e:7d:df:dd:c9:01:a9:ed:08:a1:f7:b8:5c:9f: 32:2c:ee:57:2d:02:89:af:99:12:b3:f9:23:f0:0a:d5:67:40: 51:13:fb:9f:21:b1:95:1c:fa:d5:98:fc:92:df:6c:1e:89:6d: a7:8e:f8:84:38:3f:02:62:de:56:98:9b:9f:72:42:a1:f6:90: 0c:52:18:b6:37:36:c4:e7:fe:72:82:eb:09:56:d5:b0:17:9d: 97:d9:07:05 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwM0IxMTAvBgNVBAUTKEI5RTYwQ0YxNzlGNEVBQ0JEQjk0OTJCQTVGN0NBQ0Y0 NTIzOUNDRjQwHhcNMjQxMDE3MTcxNTU3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzExNDY0ZC0yMzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDFVgpF4hQlDjOUyzeK4zpIBnNzQb9n7jYsl0u9QcPnn3QV+Gq5r4d8rnLI9 Vw6le253+6fl9kPrIMgeMj67VsqSLoMrL1CbLcnMTOoSyaUmQzEJLSdV4dTtypsJ A0f3GpvnNW5d6DYS6r/L7wWa9emvd9q2H86aH1ltj0EqEHLfFmi1P3hbA2e4MoWc vOOqVXdeR+/7YmAAOLhCNcTrWop+knTZ/8OPRAAHAbOW6rAINVEaZ8PZcg3E09eq XXSSMzUdI6OfebE0okxyTU3YHlcQfIraz7pVIgc54mZ1xTd6AWcdKjcnrx+Gz4bv 6TKRw435iQ1nyLfrgpc4MbB/hQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFChBUCrH GPQ2o7ogGuPvOBtiiSJhMB8GA1UdIwQYMBaAFLnmDPF59OrL25SSul98rPRSOcz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTAzQi9BRjk2NzE2NjBC NkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZzdmJsSks2WDN5czlGSTV6 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VlWU04WG4wNnN2YmxKSzZYM3lzOUZJNXpQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwM0IvQUY5NjcxNjYwQjZFMTFFRUIyOUJCMTcwQzRGOUFFMDIvM0YzRURBMDY4 Q0FCMTFFRjhBNjFDMjQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgACMBQwEgMHACQBC2AANwMHACQBC2AAODANBgkqhkiG9w0BAQsFAAOC AQEAMTwds2CA53TjfVRot9/IdiWo+oA3plfXUYRtpXhkS9foSPberDW3HOKBPG7i tH/bHz6MrbcTJqD3CIhx0JKr4o2Mtfgzlj+xkLEINECQ6mwID6DkANWeoRUn/fCk VCMJI/M1Rdi8uSBkpq5ZBKCRne35vqbx9afd/cE7dN+87GfVDCd04d8wVDChYVie 8Hbd6dMEGucCsKAafiJnYsxysi4J+o60MF59393JAantCKH3uFyfMizuVy0Cia+Z ErP5I/AK1WdAURP7nyGxlRz61Zj8kt9sHoltp474hDg/AmLeVpibn3JCofaQDFIY tjc2xOf+coLrCVbVsBedl9kHBQ== -----END CERTIFICATE-----Generated at Wed Oct 23 06:17:28 2024 by rpki-client on console-ams.rpki-client.org